Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/A9E201BC97F711ED9AACCCB8F1222468.roa
File: A9E201BC97F711ED9AACCCB8F1222468.roa (raw, json)
Hash identifier: mT3K0uAP8Zg/Zj89NpNYLRf3jCRC3mAjV7sjOIJBkt4=
Subject key identifier: EC:E8:66:43:ED:E9:8C:E6:AC:0C:E4:E1:93:AB:A0:D7:1E:E6:42:F6
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 096C
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/A9E201BC97F711ED9AACCCB8F1222468.roa
Signing time: Thu 19 Jan 2023 12:49:08 +0000
ROA not before: Thu 19 Jan 2023 12:49:04 +0000
ROA not after: Fri 19 Jan 2024 12:49:04 +0000
asID: 207990
IP address blocks: 161.123.118.0/23 maxlen: 24
161.123.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2412 (0x96c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Jan 19 12:49:04 2023 GMT
Not After : Jan 19 12:49:04 2024 GMT
Subject: CN=63c93c44-9ba8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:45:b1:55:db:d1:85:48:fd:8e:73:99:e8:d4:
48:e1:1c:7a:ce:f7:e6:c5:cc:89:87:90:49:e1:67:
e6:dd:24:04:3f:47:03:82:70:e5:18:a5:0c:82:8d:
a3:07:de:17:15:1b:e9:73:77:db:22:bd:29:02:2a:
79:e4:59:83:17:9c:98:40:7f:d5:93:cb:c3:5a:ff:
5b:a7:2f:70:cc:07:87:a2:11:81:99:f5:80:fd:89:
39:92:cf:bf:93:86:c2:b2:e8:f7:aa:e0:17:f2:4b:
57:04:3e:99:11:d5:f3:4d:34:06:d2:e1:18:46:bc:
b0:9e:20:3b:e9:d0:8b:12:08:45:27:8c:15:50:55:
84:ef:d3:a3:7d:4f:c7:ed:c7:27:89:aa:92:3c:4b:
21:31:e4:87:ed:eb:51:33:82:63:e9:f3:2e:70:fd:
04:d0:47:72:8b:88:d0:55:0f:c0:a9:79:db:f2:c7:
4a:e2:7c:3a:40:05:5f:a0:d3:ba:8c:24:aa:d1:50:
5c:18:40:82:46:13:49:17:4c:b9:3c:29:b2:5e:20:
e2:2b:06:6f:4a:1b:ef:2d:12:7e:8b:34:d0:bd:e5:
df:62:f5:73:54:b9:03:af:c1:56:6b:d4:fa:66:2f:
56:1a:c0:af:fd:74:fa:23:81:a4:71:e0:1f:05:5f:
1b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:E8:66:43:ED:E9:8C:E6:AC:0C:E4:E1:93:AB:A0:D7:1E:E6:42:F6
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/A9E201BC97F711ED9AACCCB8F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.118.0/23
161.123.176.0/20
Signature Algorithm: sha256WithRSAEncryption
b4:3e:8a:14:e0:4c:4c:a9:f3:fb:c3:dc:d3:c6:66:bf:51:ff:
7a:09:0a:cc:63:af:77:86:47:c7:b1:35:f8:73:2b:33:1e:2a:
f7:e0:28:3b:6a:99:b0:d1:5b:cd:e0:20:43:77:c0:2e:50:d5:
40:18:aa:42:81:7c:4a:20:f3:ba:7c:ae:e7:bc:50:b1:d6:93:
3a:0e:63:d0:8a:c9:32:da:39:ac:79:5f:72:d7:55:8c:e9:85:
7d:a6:4b:51:65:92:0d:95:db:5a:72:fe:b4:a7:99:9e:2d:7a:
66:95:2a:14:b3:7c:fc:f0:e9:ea:b5:a4:49:0d:26:27:17:3a:
78:1b:1d:06:f3:3c:62:0c:6f:77:78:75:85:0d:e4:dd:cb:cd:
87:1e:61:ab:e7:09:63:dd:84:8f:cf:a3:b2:0c:fc:f1:89:41:
ec:2b:36:2d:a1:25:fb:d2:6d:b3:71:e7:0b:33:a9:0e:0b:ae:
62:fb:7e:b4:76:5c:25:43:69:db:e3:ca:a7:66:e5:90:e4:c7:
b0:83:70:62:29:81:da:76:10:af:f7:f6:ff:fc:a1:f1:97:20:
59:2c:31:a1:47:3b:81:05:f3:c9:5f:b8:f7:d5:c0:5d:bf:06:
45:a5:60:10:38:d9:5b:17:64:82:64:e0:09:bb:95:b0:73:90:
8a:e1:3e:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-ams.rpki-client.org